Quote from: mrtoner on November 24, 2010, 10:38:00 AM
I think I can reduce the number there by changing my CAPTCHA setting from Medium to High (I've already tried that and it appears to work), but the resulting image is so difficult to read that I'm afraid that will discourage legitimate registrations. (I know *I* have trouble reading it.) Is there any additional way to reduce the number of spam registrations?
Quote from: ZBWDO on September 23, 2010, 09:27:29 AM
...
Allow me to select options, when the mod recognizes a username, IP, or email that exists in the stopforumspam database, to:
[ ] Add the username, IP, hostname, and/or email address to my forum's ban list
[ ] Report the username, IP, hostname, and email address to stopforumspam.com
[ ] Delete the account
...
Quote from: ZBWDO on September 23, 2010, 09:27:29 AM
...
Alternatively, the tool could add these to the "With Selected:" dropdown menu (Ban, Report, Reject/Delete)
...
Quote from: Storman on April 15, 2010, 12:48:47 PMQuoteSecondly, I've had a few rouge registrations that are listed at stopforumspam.com etc. However, the mod doesn't seem to pick them up at the registration stage. If I manually check the user then it picks them up no problem and highlights them accordingly. Am I missing something here ?
Just wondered if anyone has any info on my question above. As mentioned, it doesn't seem to pick up dodgy members at the registration stage. yet if I run a "check" they are highlighted. Just wondered if I've missed understood how it works ? I thought it would pick them up at the registration stage and then mark them "for approval" ? That doesn't seem to be happening...
Quote from: snoopy_virtual on February 20, 2010, 09:41:26 AMQuote from: lc62003 on February 20, 2010, 12:08:41 AM
You can already turn off/on 'check username'.
I don't think That's what Robert is saying.
Note this:Quote from: Robert A. Rosenberg on February 19, 2010, 11:15:58 PM
...
My fix is to add a field to the flags that highlight the name, email address, and IPN entries that says for THAT Field of an entry to ignore the match.
...
Note that this is NOT referencing the global switch to not check a filed for ALL users but just a setting in the user's entry to say to ignore the field.
...
It could be done (complicated but possible) but I don't think it will be practical.
You are saying:Quote from: Robert A. Rosenberg on February 19, 2010, 11:15:58 PM
...
not flag him again until there is an actual match on the email and/or IPN.
...
OK, but how can I tell the program to check again that user every now and then to see if the email or the IP are changing from good to bad?
Just now the program only check users automatically when they try to register. They are not checked again unless you do it manually. To change that I will need to change almost all the way the program works.
Quote from: Robert A. Rosenberg on February 19, 2010, 11:15:58 PM
In Reply #324 there was a discussion of the False Positive problem where a non-Spammer is being flagged just due to having the same name as a spammer (in my case UserID Dave). I may be confusing the suggested fix in that reply with one from another message but in any case, I would like to suggest a possible solution (or support the one I think I remember). My fix is to add a field to the flags that highlight the name, email address, and IPN entries that says for THAT Field of an entry to ignore the match. In my case, for the user who is falsely having his userid made a red icon, be able to reset it to OK and say to not flag him again until there is an actual match on the email and/or IPN. Note that this is NOT referencing the global switch to not check a filed for ALL users but just a setting in the user's entry to say to ignore the field.
Thank You.
Quote | QuoteLegend |
QuotePersonally, I even if there is NOT an error with the DB connection, I don't want it to automatically de-activate someone because their username appears in the SFS database. The chance of a name false-positive is fairly good, and I don't expect a LOOK AT THIS EXISTING MEMBER to suddenly de-activate them until I say so.
Quote from: EL34xyz on February 09, 2010, 07:28:21 AM
Snoop,
I don't care about false positives, you are missing the whole gist of how this bug operates.
And yes partial names are reported if that name is part of another name
That does not matter, this is the bug below.
This spam mod deletes the false positives members
The spam mod should not delete these false positive members automatically!
The is_activated status in the SMF database is changed from 1 to a 3 on these false positive members.
Do you understand this now?
Look at this screen shot
Quote from: snoopy_virtual on February 08, 2010, 01:15:10 PM
...
If it catches somebody because their IP can be 3 options:
- It's a spammer.
- It's a legal guy but the computer has a trojan and it's part of a botnet sending spam without the owner knowledge.
- It's a legal guy but he has a dynamic IP (the ones changing every time you restart your router) and today he has an IP which uses to belong to a spammer.
So if your program catches as spammer somebody you are sure is a legal person, just because the IP, you should tell them so they can scan the computer looking for trojans (or just restart the router and get another IP).
If you are interested in this subject, I have written a lot about it.
For example:
http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&topic=297.msg1230#msg1230
http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpbl
etc.
Quote from: SiL on December 25, 2009, 09:20:06 AM
...
If I can point you to an extract from my previous request in October, and it is connected with the false positive issue - it is a suggestion for a slightly modified version of Nerd3D's request
...
etc etc
Quote from: snoopy_virtual on December 15, 2009, 10:15:50 PMQuote from: Nerd3D on December 15, 2009, 08:31:46 PM
OK, here's a feature request. Can we have on the prefs page check boxes for which fields to test. All my false positives are user name only. Can we in the mean time is there a not-too-complicated way to set this up. So it only checks IP and Email.
It looks like a great idea, and I don't think it's very complicated.
As I still have a few days left until I have access to the official page to upload the final version 2.4 there, I can try to modify my temporary version to add also this feature in it.
I will tell you how it goes.
Quote from: SiL on October 26, 2009, 01:09:01 AM
I noticed a number of false positives based on username only - legitimate members may be using the same username as a spammer, but of course with a different ip address and email address.
Because of dynamic IP assignment the same can be true for IP address hits.
The spam check weights the detection flag as
email address = 4
username = 2
ipaddress = 1
Doing a quick check with an offline mirror of a forum database for 300-400 entries threw up
a number of false positives - these were almost always username only or ip address only.
So my thinking is the boundary between a false positive and a real positive spammer is the value "3" . If the "is_spammer" value is 1 {ip address - e.g. dynamic} or 2 {common username}, this is a warn, but no action required (registration allowed). Any "is_spammer" value of 3 or higher is placed in the waiting list.
& how would this be useful?
My suggestion would be to have a checkbox, maybe call it "strict" or "catch all" - if this is checked, an "is_spammer" value between 1 and 7 will satisfy the spammer criteria and user will be placed on waiting list to be checked/approved (this is how I understand the mod to currently work).
however...
If the "catch all" checkbox is NOT checked, only spammers with an "is_spammer" value between 3 and 7 will be put on the waiting list. Those users who are unlucky enough to have a common username shared with a spammer, but otherwise legitimate will be allowed through as normal.
{see original post for remainder of suggestion}
Quote from: Ziggy on May 17, 2009, 02:45:13 PM
The Dutch language file has a mistake in this line:$txt['stopspammer_enable'] = 'MOD Stop Spammer' in/uitschakelen;
I think it should be:$txt['stopspammer_enable'] = 'MOD Stop Spammer in/uitschakelen';
Quote from: FragaCampos on May 18, 2009, 11:15:33 AM
Thanks a lot for this great mod.
With the recent attacks to SMF foruns, it is very useful.
Quote from: Tiribulus on May 18, 2009, 12:06:20 PM
Security mods including this one, were the first I installed when deploying my site and it appears my paranoia was well founded. No forum package, or any other package for that matter, will ever be entirely impervious to every possible attack no matter how well written.
Quote from: MissyNL on May 19, 2009, 07:04:11 AMQuoteThere is currently no way to do it.That would be great!
Remains in red to maintain this "data", but (if it is necesary) I could add the feature to "clean out" a user. (snoopy_virtual time ago suggested me this case)
Quote from: MissyNL on May 19, 2009, 07:04:11 AM
Also it would be nice to choose how to scan.. now i have several accounts for approval, simply because the name is listed... but they are very common names like Daisy or something... It would be great to have an option to only check for IP and mail adress and not on name...
$remoteXML = 'http://www.stopforumspam.com/api?' . ('127.0.0.1' != $check_ip ? "ip={$check_ip}&" : '') . 'username=' . urlencode($check_name) . '&email=' . $check_mail;
$remoteXML = 'http://www.stopforumspam.com/api?' . ('127.0.0.1' != $check_ip ? "ip={$check_ip}&" : '') . '&email=' . $check_mail;
Quote from: MissyNL on May 19, 2009, 07:04:11 AM
And it would be nice to have an option to check all members.. since i now have 2000+ members and it will take me ages to scan everyone manual...
Quote from: MissyNL on May 19, 2009, 07:04:11 AM
But... most of all.. thank you for this wonderfull mod!!! Im shur this will add more safety..
Quote from: FragaCampos on May 19, 2009, 11:11:43 AM
Yes, an option to sort by the red icon would be great, i have 5000+ users and it's not easy to search through the entire list.
Anyway, it would be just an addon, since the mod works fine.